2FA Policy for All University Accounts has been made effective for students on 3 Nov 2020 and for staff on 2 Feb 2021. Under this policy, all staff and students are mandatory to enroll in two-factor authentication (2FA), DUO.

The 2FA solution DUO adds a second-layer security to our accounts. With it, you can

• Stop unauthorized users from gaining access if your password is stolen
• Be notified about the network location of the unauthorized login

All staff and students must log in CUHK email service, Microsoft 365, CUHK VPN, etc. with 2FA. New staff and students should also enable 2FA after they collect their computing account.

Visit our ITSC webpage – DUO Two-factor Authentication (2FA) (https://www.itsc.cuhk.edu.hk/all-it/information-security/two-factor-authentication-2fa/) to learn more about self-enrollment instructions (document and video), usage tips and a full list of CUHK services which require 2FA.

2FA will be introduced to more services and applications in the future.